Enumeration with SNMP 137
The PsTools Suite
Standing tall next to our other tools is a suite of Microsoft tools designed to extract various
kinds of information and perform other tasks involving a system. The tools in the PsTools
suite allow you to manage remote systems as well as the local system.
The tools included in the suite, downloadable as a package, are as follows:
PsExec Executes processes remotely
PsFile Displays files opened remotely
PsGetSid Displays the SID of a computer or a user
PsInfo Lists information about a system
PsPing Measures network performance
PsKill Kills processes by name or process ID
PsList Lists detailed information about processes
PsLoggedOn Lets you see who’s logged on locally and via resource sharing (full source is
included)
PsLogList Dumps event log records
PsPasswd Changes account passwords
PsService Views and controls services
PsShutdown Shuts down and optionally reboots a computer
PsSuspend Suspends processes
PsUptime Shows you how long a system has been running since its last reboot (PsUptime’s
functionality has been incorporated into PsInfo)
Enumeration with SNMP
Another useful mechanism for enumerating a target system is the Simple Network Manage-
ment Protocol (SNMP). This protocol is used to assist in the management of devices such as
routers, hubs, and switches, among others.
SNMP comes in three versions:
SNMPv1 This version of the protocol was introduced as a standardized mechanism
for managing network devices. While it accomplished many tasks such as introducing a
standardized protocol, it lacked in many others. The shortcomings of this protocol were
addressed in later versions. Of interest to the pen tester is the fact that this version does not
include any security measures.